9 Security Architecture jobs in India

You will work within a team, engaging with Product team members to help build and reinforce the Security mindset and to embed security practices in the day to day work. Examples include: creating security checks in the static code, adding security gates to the CI and CD process, adding VA/PT reports in the release notes, Architecture Reviews , Threat Modeling, Security maturity model building for the products

Minimum qualifications:

• Education: Bachelors/Masters degree.

• 3 to 7 years of experience in a security engineer role.

• Hands on experience of AWS cloud security.

• Threat Modelling and Architecture review of application hosted in cloud environment.

• Familiarity with Cloud Computing and Software as a Service.

• Strong experience in Application Security and knowledge of OWASP Top 10 security issues.

• Hands-on operational experience with Security Tools like Burpsuite, Tenable, DivvyCloud, TMDS etc.

• Hands-on Experience with secure code review tools like Veracode.

• Experience in designing, implementing and automating security process in CI/CD pipelines on tools like Jenkins.

• Experience with Compliance Standards like PCI, CIS will be preferred.

• Experience with Incident Change Management.

• Strong communication skills; both written and oral.

• Ability to work in a team environment.

Nice to haves

Preferred qualifications:

• CEH/OSCP/CCSK/CCSP/eWPT/eNDP certification.

• AWS Solution Architect and Security Specialty Certification.

• Relevant experience in a product organization.

• Experience in automation using Python, Go.

• Experience with configuration management and security review of automation server like Jenkins.

Education Bachelors or Masters degree

3 to 7 years of experience in a security engineer role

'Information Security Architect

Location: DTICI (Daimler Truck Innovation Center India), Bangalore

Experience Required: 7–9 years

Certifications:

• Mandatory: CISSP (Certified Information Systems Security Professional)

• referred/Added Advantage: AZ-500 (Microsoft Azure Security Technologies), CCSP (Certified Cloud Security Professional)

About DTICI

Daimler Truck Innovation Center India (DTICI), headquartered in Bengaluru, came into existence on December 01, 2021. DTICI is a Innovation hub of Daimler Truck AG focused on Product Engineering and IT.

Daimler Truck AG is a pioneer of commercial vehicles, being one of the largest commercial vehicle manufacturers in the world. In line with the global changes, DTICI was formed with the intention of complete dedication to the parent company, Daimler Truck AG.

At DTICI, we are committed to enabling a diverse and inclusive work environment and to provide all our employees with learning and development opportunities.

Role Overview

We are seeking a technically strong and hands-on Information Security Architect to drive security design, threat modeling, and architecture reviews across multiple projects. The ideal candidate will support teams with technical security requirements, document risks using SD Elements, and align architectural decisions with security best practices and frameworks.

While this role does not directly involve conducting Vulnerability Assessment and Penetration Testing (VAPT), prior experience in these areas is essential to understand potential risks and recommend effective security controls.

Key Responsibilities

• D sign and review secure system and application architectures.

• C nduct and support threat modeling and risk assessment activities.

• I entify and document attack surfaces and potential vulnerabilities during design reviews.

• A t as a security advisor to project and architecture teams throughout the development lifecycle.

• C pture and manage technical security observations in SD Elements, ensuring traceability and remediation tracking.

• E gage with stakeholders across development, architecture, and infrastructure teams to embed security into solution design.

• A ign solutions with enterprise architecture frameworks (e.g., TOGAF, SABSA) and internal security policies.

• P rticipate in architecture review boards and security governance forums.

• S pport secure design validation for cloud, on-prem, and hybrid environments.

 Required Skills and Experience

• 7– years of experience in information security or architecture-related roles.

• S rong background in application security, secure development lifecycle, and architecture design.

• H nds-on experience in threat modeling and understanding of attack surfaces.

• P st experience in VAPT execution and remediation handling (even though not part of the current responsibilities).

• E perience using SD Elements for security requirements and issue tracking is mandatory.

• P oficient in architecture frameworks such as TOGAF, SABSA, or NIST.

• G od knowledge of cloud security (preferably Azure) and secure DevOps practices.

• E cellent communication skills to collaborate with global stakeholders and technical teams.

Tools and Frameworks Knowledge (Preferred)

• T ols: SD Elements, ThreatModeler, Microsoft Defender, architectural modeling tools

• F ameworks: TOGAF, SABSA, NIST CSF, OWASP Top 10, MITRE ATT&CK

What You'll Get

• A chance to work with a global leader in the commercial automotive sector.

• A collaborative environment driving innovative and secure vehicle technologies.

• E posure to diverse projects in an enterprise-grade security setup.'

Company Description

Organizations everywhere struggle under the crushing costs and complexities of “solutions” that promise to simplify their lives. To create a better experience for their customers and employees. To help them grow. Software is a choice that can make or break a business. Create better or worse experiences. Propel or throttle growth. Business software has become a blocker instead of ways to get work done.

There’s another option. Freshworks. With a fresh vision for how the world works.

At Freshworks, we build uncomplicated service software that delivers exceptional customer and employee experiences. Our enterprise-grade solutions are powerful, yet easy to use, and quick to deliver results. Our people-first approach to AI eliminates friction, making employees more effective and organizations more productive. Over 72,000 companies, including Bridgestone, New Balance, Nucor, S&P Global, and Sony Music, trust Freshworks’ customer experience (CX) and employee experience (EX) software to fuel customer loyalty and service efficiency. And, over 4,500 Freshworks employees make this possible, all around the world.

Fresh vision. Real impact. Come build it with us.

Job Description

We’re looking for a Jr AI Security Architect to join our growing Security Architecture team. This role will support the design, implementation, and protection of AI/ML systems, models, and datasets. The ideal candidate is passionate about the intersection of artificial intelligence and cybersecurity, and eager to contribute to building secure-by-design AI systems that protect users, data, and business integrity.

Key Responsibilities

Secure AI Model Development

- Partner with AI/ML teams to embed security into the model development lifecycle, including during data collection, model training, evaluation, and deployment.

- Contribute to threat modeling exercises for AI/ML pipelines to identify risks such as model poisoning, data leakage, or adversarial input attacks.

- Support the evaluation and implementation of model explainability, fairness, and accountability techniques to address security and compliance concerns.

- Develop and train internal models for security purposes

Model Training & Dataset Security

- Help design controls to ensure the integrity and confidentiality of training datasets, including the use of differential privacy, data validation pipelines, and access controls.

- Assist in implementing secure storage and version control practices for datasets and model artifacts.

- Evaluate training environments for exposure to risks such as unauthorized data access, insecure third-party libraries, or compromised containers.

AI Infrastructure Hardening

- Work with infrastructure and MLOps teams to secure AI platforms (, MLFlow, Kubeflow, SageMaker, Vertex AI) including compute resources, APIs, CI/CD pipelines, and model registries.

- Contribute to security reviews of AI-related deployments in cloud and on-prem environments.

- Assist in automating security checks in AI pipelines, such as scanning for secrets, validating container images, and enforcing secure permissions.

Secure AI Integration in Products

- Participate in the review and assessment of AI/ML models embedded into customer-facing products to ensure they comply with internal security and responsible AI guidelines.

- Help develop misuse detection and monitoring strategies to identify model abuse (, prompt injection, data extraction, hallucination exploitation).

- Support product security teams in designing guardrails and sandboxing techniques for generative AI features (, chatbots, image generators, copilots).

Knowledge Sharing & Enablement

- Assist in creating internal training and security guidance for data scientists, engineers, and developers on secure AI practices.

- Help maintain documentation, runbooks, and security checklists specific to AI/ML workloads.

- Stay current on emerging AI security threats, industry trends, and tools; contribute to internal knowledge sharing.

Qualifications

- 3-4 years of experience in LLM and 7-10 years of experience in cybersecurity, machine learning, or related fields.

- Familiarity with ML frameworks (, PyTorch, TensorFlow) and MLOps tools (, MLFlow, Airflow, Kubernetes).

- Familiarity with AI models and Supplychain risks

- Understanding of common AI/ML security threats and mitigations (, model inversion, adversarial examples, data poisoning).

- Experience working with cloud environments (AWS, GCP, Azure) and securing workloads.

- Some knowledge of responsible AI principles, privacy-preserving ML, or AI compliance frameworks is a plus.

Soft Skills

- Strong communication skills to collaborate across engineering, data science, and product teams.

- A continuous learning mindset and willingness to grow in both AI and security domains.

- Problem-solving approach with a focus on practical, scalable solutions.

Additional Information

At Freshworks, we are creating a global workplace that enables everyone to find their true potential, purpose, and passion irrespective of their background, gender, race, sexual orientation, religion and ethnicity. We are committed to providing equal opportunity for all and believe that diversity in the workplace creates a more vibrant, richer work environment that advances the goals of our employees, communities and the business.

• Design, develop, and maintain the organization's information security architecture, ensuring alignment with business objectives and risk management strategies.
• Evaluate and select security technologies, tools, and solutions, including firewalls, IDS/IPS, WAFs, SIEM, endpoint protection, and encryption.
• Develop security standards, policies, and procedures to guide the implementation and operation of security controls.
• Conduct security architecture reviews, risk assessments, and vulnerability analyses for new systems and applications.
• Collaborate with IT infrastructure, development, and operations teams to integrate security controls into the entire system development lifecycle (SDLC).
• Provide expert guidance on secure coding practices, cloud security, and network security principles.
• Develop and implement security best practices for cloud environments (e.g., AWS, Azure, GCP).
• Lead the design and implementation of security solutions for complex, large-scale enterprise environments.
• Troubleshoot and resolve complex security-related issues across various technology platforms.
• Stay current with emerging security threats, vulnerabilities, and technologies, and proactively adapt the architecture to address them.
• Develop and deliver security architecture documentation, including diagrams, specifications, and proposals.
• Mentor and guide junior security engineers and architects.
• Participate in incident response planning and execution, providing architectural insights.
• Ensure compliance with relevant security regulations and industry standards.

• Bachelor's or Master's degree in Computer Science, Information Security, Engineering, or a related field.
• A minimum of 7 years of progressive experience in information security, with at least 4 years focused on security architecture and design.
• Deep understanding of security principles, frameworks (e.g., NIST, ISO 27001), and best practices.
• Proven experience designing and implementing secure cloud architectures (AWS, Azure, GCP).
• Expertise in network security, application security, endpoint security, and identity and access management (IAM).
• Familiarity with a wide range of security technologies and vendors.
• Strong analytical, problem-solving, and strategic thinking skills.
• Excellent written and verbal communication skills, with the ability to effectively communicate technical concepts to both technical and non-technical stakeholders.
• Ability to work independently and lead projects in a remote environment.
• Relevant certifications such as CISSP, CCSP, or cloud-specific security certifications are highly desirable.
• Experience with security automation and orchestration tools is a plus.

What you will be doing:

• Executes security controls to prevent hackers from infiltrating company information or jeopardizing programs.
• Maintains security systems and administers security policies to control access to systems.
• Maintain SIEM solution and expand coverage.
• Researches attempted efforts to compromise security protocol and recommends solutions.
• Creates information security documentation related to work area and completes requests in accordance with company requirements.
• Responds to information security-related questions and inquiries using established information security tools and procedures.
• Resolves and/or performs follow through to resolve all information security issues and questions.
• Implements and administers information security controls using software and vendor security systems.
• Identifies opportunities and executes plans to improve workflow and understands and quantifies business impacts of those improvements for communication to management.
• Interfaces with user community to understand security needs and implements procedures to accommodate them. Ensures that user community understands and adheres to necessary procedures to maintain security.
• Provides status reports on security matters to develop security risk analysis scenarios and response procedures.
• Other related duties assigned as needed.

What you bring:

• Knowledge and experience of deploying and managing SIEM solutions.
• Knowledge of cloud technologies from security perspective
• Ability to develop custom automations for simplifying processes.
• Knowledge of networks technologies (protocols, design concepts, access control)
• Knowledge of security technologies (encryption, data protection, design, privilege access, etc.)
• Knowledge of network design and engineering
• Proficiency in time management, communications, decision making, presentation and organizational skills
• Proficiency in planning, reporting, establishing goals and objectives, standards, priorities and schedules
• Basic to intermediate decision-making and problem solving skills
• Basic to intermediate verbal and written communication skills to technical and non-technical audiences of various levels in the organization
• Experience establishing and maintaining effective working relationships with employees and/or clients

EDUCATION REQUIREMENTS

• Bachelor s degree in computer science or the equivalent combination of education, training, or work experience.

EY- Cyber Security (Cloud Security) – Technology Consulting  – Staff

As part of our EY Cyber security, Technology Consulting team, your role will be to actively establish, maintain and strengthen internal and external relationships. You will be responsible for delivery and maintaining quality of services and deliverables on your engagements. You'll also identify potential business opportunities for EY and GDS within existing engagements and escalate these as appropriate. Similarly, you'll anticipate and identify risks within engagements and share any issues with senior members of the team.

The opportunity

We're looking for Senior to work on various cloud security engineering related projects for our customers across the globe.

This role requires hands-on experience in cloud, application and/or infrastructure security, technology risk management in a highly regulated environment as well as great organizational and communication (verbal and written) skills. The Cloud Security team required to work on various security architecture related requirements which address sector specific challenges. Delivering solutions using third party security tools will be a part of the delivery responsibilities.

Your key responsibilities

• Provide specific security expertise to engineering teams by identifying and creating patterns and blueprints for repeatable security, infrastructure and application instantiations.
• Ensure security baselines are aligned with organizational policies and best practices.
• Continuously update and refine security baselines to address emerging threats and changes in the cloud landscape.
• Implement security baselines across cloud environments to ensure consistent application of security controls.
• Utilize CSPM tools (e.g. Azure Defender for cloud, WIZ, Prisma cloud) to implement the enforcement of security baselines.
• Collaborate with DevOps and IT teams to integrate security baselines into cloud deployment processes.
• Monitor cloud environments for compliance with defined security baselines.
• Work with teams to remediate non-compliance issues and track resolution progress.
• Respond to security incidents related to cloud security posture and assist in incident investigations and remediation.
• Prepare and present reports on cloud security posture, compliance status, and risk assessments to management and stakeholders.
• Work closely with cross-functional teams to ensure alignment on security requirements and practices.
• Communicate effectively with stakeholders regarding security baseline initiatives and compliance efforts.

Required Skills:

• Minimum of 2 years of IT and Cybersecurity experience
• At least 2+ years of specialization in Cybersecurity and CSPM tools (e.g. Azure Defender)
• At least 2+ years of application development experience with backend development, Containerized applications
• At least 2+ Experience working with KQL query writing and implementing configuration.
• Experience using or fixing vulnerabilities of various security tools.

To qualify for the role, you must have

• 2+ years of experience in the Cyber Security and Cloud Security Domain
• Minimum B. Tech. or equivalent educational qualification
• Certifications – Azure Security Engineer, AWS Certified Security - Specialty  , CCSK
• Product certifications around AWS, Azure, GCP, Ali Cloud will be preferred
• Product knowledge and certification for tools such as Terraform, Sentinel, Rego.

What we look for

• A Team of people with commercial acumen, technical experience and enthusiasm to learn new things in this fast-moving environment with consulting skills.
• An opportunity to be a part of market-leading, multi-disciplinary team of 1400 + professionals, in the only integrated global transaction business worldwide.
• Opportunities to work with EY Consulting practices globally with leading businesses across a range of industries

What working at EY offers

At EY, we're dedicated to helping our clients, from start–ups to Fortune 500 companies — and the work we do with them is as varied as they are.

You get to work with inspiring and meaningful projects. Our focus is education and coaching alongside practical experience to ensure your personal development. We value our employees and you will be able to control your own development with an individual progression plan. You will quickly grow into a responsible role with challenging and stimulating assignments. Moreover, you will be part of an interdisciplinary environment that emphasizes high quality and knowledge exchange. Plus, we offer:

• Support, coaching and feedback from some of the most engaging colleagues around
• Opportunities to develop new skills and progress your career
• The freedom and flexibility to handle your role in a way that's right for you